In the wake of Locky Ransomware attack and the India’s Computer Emergency Response Team (CERT) issuing alert across the country, cybersecurity firm Trend Micro has stated that there are no incidence reported by Trend Micro’s customers in India at present. Company said that the ransomware is not likely to be on the scale of Wannacry and Petya ransomware, which relies on Microsoft vulnerability in Windows XP. The Japanese firm has also provided precautionary measures on how to stop the Lukitus variant of Locky ransomware from spreading.

“So far, there haven’t been any cases of Locky ransomware reported by our customers in India or across geographies, but we are getting enquiries from customers and Trend Micro’s support team is helping out in resolving them. For addressing this malware, Trend Micro has its protection in place with suspicious and bad URLs being blocked. There are technologies wherein such embedded macros and file scripts can be detected and deleted,” said Sharda Tickoo, Technical Head, Trend Micro India.

Pointing out the differences between other ransomware, she added, “Wannacry and Petya ransomware looks for Microsoft vulnerability to exploit and spread. There were only few machines with Microsoft vulnerability in Windows XP and hence the damage was huge. In this case, it is not exploiting any vulnerability, but what it uses is a Visual Basic (VB) / JavaScript encrypts in a document and the chances of this malware getting evaded are high.”

EVENT

Saksham Bharat 2026

A multi-stakeholder dialogue on skilling gap in Cybersecurity, Data Resilience and AI — and the roadmap to a Saksham Bharat.

📅 Tue, 26 May 2026

📍 Mumbai, Bengaluru, Delhi

EVENT

VeeamON 2026 Tour India - Mumbai

A VeeamON 2026 India Leadership Series Mumbai for senior public sector and government technology leaders.

📅 Tue, 26 May 2026

📍 Grand Hyatt, BKC

EVENT

Cyber Surakshit Uttar Pradesh

Find out strategies, frameworks and solutions for building a resilient and secure digital ecosystem across Uttar Pradesh.

📅 Thu, 28 May 2026

📍 Lucknow

EVENT

VeeamON 2026 Tour India - Bengaluru

A VeeamON 2026 India Leadership Series Bengaluru for senior public sector and government technology leaders.

📅 Wed, 03 Jun 2026

📍 JW Marriott Hotel

EVENT

VeeamON 2026 Tour India - Delhi

A VeeamON 2026 India Leadership Series Delhi for senior public sector and government technology leaders.

📅 Fri, 19 Jun 2026

📍 Shangri-La Eros

EVENT

Infosec Reimagined

Infosec Reimagined 2026 is the premier information security summit where top leaders—CISOs, CROs, CIOs, CTOs and risk executives—converge to redefine cyber resilience.

📅 Fri, 26 Jun 2026

📍 New Delhi

EVENT

Digital Senate

Digital Senate is a premier conference uniting government leaders, technologists and innovators to share ideas, success stories and strategies on digital governance, public sector transformation, cybersecurity and emerging technologies in India.

📅 Thu, 30 Jul 2026

📍 New Delhi

EVENT

CIO Prism

CIO Prism unites forward-thinking technology leaders to exchange transformative insights, shape digital strategies, and foster innovation, empowering enterprises to excel in an era of rapid technological change.

📅 Fri, 18 Sep 2026

📍 Goa

On September 3, a warning issued by India’s Computer Emergency Response Team (CERT) on its website said that over 23 million messages and emails have been sent with the ransomware attachment. The spam, CERT stated had common subjects like ‘please print’, ‘documents’, ‘photo’, ‘Images’, ‘scans’ and ‘pictures’. But the subject may vary when it is an instance of phishing.

CERT has advised users to refrain from clicking any suspicious file and back up important data and files should be taken using removable and external devices. It has also curated a list of domains to avoid.

“Since this particular malware arrives through email compressed attachment and through hidden Visual Basic (VB) / JavaScript, we have to ensure that email as a channel is widely protected. We are trying to build a ransomware strategy with two best practices – first is to start with fortifying email defense mechanisms and second is to delete the VB or Java Script if it is not used in machines. There are certain secure configurations which are unnecessary and not running, should be blocked. This particular malware has a tendency of self deletion. It deletes itself with no traces left, once the payload is executed. It encrypts local drives and network shares. The basic hygiene is to try and avoid open network share and to make sure it is password protected,” she said.

Locky Ransomware Attack: CERT-In issues warning, cybersecurity firm Trend Micro says no incidence reported by Indian customers

Exclusive

AI Is the New Enterprise Operating System

Why Zero Trust could become India’s public sector tech backbone

Modernizing SAP and Oracle for the AI Era: What CIOs Must Do Differently Now

Why AI Coding Tools Need Guardrails, Not Just Good Prompts

ALSO READ

Organised fraud rings targeting e-commerce platforms, says study

Why cybersecurity is no longer an IT issue but the price of digital life

How can the public sector improve its cybersecurity systems?

Infosec Reimagined 2025: CISOs to chart AI-driven cybersecurity strategies for enterprises and public sector

Bitcoin as balance sheet strategy: Hive CFO Darcy Daubaras

Latest in TECH

India to Lead Global IT Security Standards Body for Two Years

TRAI expands property digital connectivity ratings to nine levels

Ayush Ministry Partners With BHASHINI for 22-Language AI Translation

Rajasthan Gets First Semiconductor Plant as Sahasra Begins Chip Production

AI agents break legacy security models, Veeam CEO warns at VeeamON

RELATED ARTICLES

ABOUT US

TOPICS

BRAND SOLUTIONS

Headlines in Your Inbox

Comments

Locky Ransomware Attack: CERT-In issues warning, cybersecurity firm Trend Micro says no incidence reported by Indian customers

Get the day's headlines from Tech Observer straight in your inbox

Subscribe to our Newsletter

RELATED ARTICLES

Comments